Presentation is loading. Please wait.

Presentation is loading. Please wait.

Strong Authentication Infrastructure Requirement: Trusted Input Devices National ID Workshop Carnegie Mellon University November 28, 2001 Lark M. Allen.

Published byAdam Bradley Modified over 9 years ago

Similar presentations

Presentation on theme: "Strong Authentication Infrastructure Requirement: Trusted Input Devices National ID Workshop Carnegie Mellon University November 28, 2001 Lark M. Allen."— Presentation transcript:

1 Strong Authentication Infrastructure Requirement: Trusted Input Devices National ID Workshop Carnegie Mellon University November 28, 2001 Lark M. Allen / Wave Systems

2 The Problem  Personal Computers are untrusted devices  Input, processing, and output cannot be protected or hidden from interception, observation, and hacking Therefore: Authentication processing in PCs cannot be trusted, regardless of the identity tokens utilized 11/27/012

3 The Problem 11/27/013 Hi, I’m Bill Gates, Would you please give me access to my bank account ? Password / PIN (PC) Sure, Trust Me! SMART

4 EU Is Addressing the Problem  France: 1999 Cyber-Comm specification for trusted smart card readers for consumer usage  Banks, Credit Card and Smart Card Companies  Authentication of smart card and keypad input performed in reader  Secure output – LCD display on reader  EU: July, 2001 FinRead specification for trusted reader devices  Banks, Governments, Technology Companies  Programmable, multi-application/services platform through Java applets  Global Trust Authority as source of trust for system  Integrated services business model for deployment 11/27/014

5 EMBASSY Trusted Client Systems Processor Memory Interfaces /Storage Clock Crypto Music DRM Digital Signature Video PPV Trust Assurance Network Digital Signature Digital Signature Music DRM Music DRM Hard Disk Digital Signature Video PPV Video PPV Application EMBASSY CHIP/ Trusted OS Music DRM ‘Sovereign and Protected Place in a Hostile Territory’

6 Strategic: Independent Trust Domains EMBASSY Device Trust Domain Shared, Multi-Party Trusted Devices SERVICE C Trust Domain Applet C Applet B SERVICE B Trust Domain SERVICE A Trust Domain Applet A

7 Strong Authentication Content Protection Services Delivery E-Commerce Privacy Protection Platform Security Secure Peer-Peer Conditional Access Distributed Transactions Secure Applets Trusted Operating System EMBASSY Trusted Client Chip Trust Assurance Network Developer Kits EMBASSY Trusted Client Applications

8 EMBASSY-enabled Devices PC USB secure input devices Interfaces to support multiple inputs: Key matrix Smart cards LCD - output Biometrics GPS Mag stripe Serial devices Keyboards (Samsung, PC OEMs) Smart Card Readers (SSP/Litronics, SCM, Securelink/CPS) PC/SC and EMV-Compliant New platform for services and security applications to PCs

Download ppt "Strong Authentication Infrastructure Requirement: Trusted Input Devices National ID Workshop Carnegie Mellon University November 28, 2001 Lark M. Allen."

Similar presentations

Achieving online trust through Mutual Authentication.

Achieving online trust through Mutual Authentication.
Smart Cards Our Inevitable Future Mark Shippy. What are smart cards? Credit card sized plastic card with an embedded chip. Credit card sized plastic card.

Smart Cards Our Inevitable Future Mark Shippy. What are smart cards? Credit card sized plastic card with an embedded chip. Credit card sized plastic card.
Thomas S. Messerges, Ezzat A. Dabbish Motorola Labs Shin Seung Uk.

Thomas S. Messerges, Ezzat A. Dabbish Motorola Labs Shin Seung Uk.
POC Security System High security system combining PIN-on-Card, information security, physical access, control and alarm – all in one system.

POC Security System High security system combining PIN-on-Card, information security, physical access, control and alarm – all in one system.
SPD1 Improving Security and Access to Network with Smart Badge Eril Pasaribu CISA,CISSP Security Consultant.

SPD1 Improving Security and Access to Network with Smart Badge Eril Pasaribu CISA,CISSP Security Consultant.
Hardware Cryptographic Coprocessor Peter R. Wihl Security in Software.

Hardware Cryptographic Coprocessor Peter R. Wihl Security in Software.
1 GP Confidential ©2013 1 GlobalPlatform’s Value Proposition for Mobile Point of Sale (mPOS)

1 GP Confidential © GlobalPlatform’s Value Proposition for Mobile Point of Sale (mPOS)
Secure Communication Architectures.

Secure Communication Architectures.
Chapter 5 Input and Output. What Is Input? What is input? p. 166 Fig. 5-1 Next  Input device is any hardware component used to enter data or instructions.

Chapter 5 Input and Output. What Is Input? What is input? p. 166 Fig. 5-1 Next  Input device is any hardware component used to enter data or instructions.
Cryptography on TFT displays Cryptography on TFT displays Pablo Sánchez Pedrosa.

Cryptography on TFT displays Cryptography on TFT displays Pablo Sánchez Pedrosa.
Presented by : ARJUN.B.M USN: 1RL05CS007 Dept Of CSE RLJIT, Dodballapur Under the guidance of : Basavaraj.S.Pol Asst. Prof Dept of CSE, RLJIT.

Presented by : ARJUN.B.M USN: 1RL05CS007 Dept Of CSE RLJIT, Dodballapur Under the guidance of : Basavaraj.S.Pol Asst. Prof Dept of CSE, RLJIT.
2003 1 Increased Security, while protecting Privacy ? True or False ? Christer Bergman, President and CEO, Precise Biometrics.

Increased Security, while protecting Privacy ? True or False ? Christer Bergman, President and CEO, Precise Biometrics.
Mobile Credentials Ennio J. Carboni Product Manager, Keon PKI

Mobile Credentials Ennio J. Carboni Product Manager, Keon PKI
Submitted by: Rahul Rastogi, CS Department.  Introduction  What is a smart card?  Better than magnetic stripe card.  Technology What’s in a card?

Submitted by: Rahul Rastogi, CS Department.  Introduction  What is a smart card?  Better than magnetic stripe card.  Technology What’s in a card?
User Managed Privacy Using Distributed Trust Privacy and Security Research Workshop Carnegie Mellon University May 29-30, 2002 Lark M. Allen / Wave Systems.

User Managed Privacy Using Distributed Trust Privacy and Security Research Workshop Carnegie Mellon University May 29-30, 2002 Lark M. Allen / Wave Systems.
Trusted Computing Initiative Beyond trustworthy. Trusted Computing  Five Key Concepts >Endorsement Key >Secure Input and Output >Memory Curtain / Protected.

Trusted Computing Initiative Beyond trustworthy. Trusted Computing  Five Key Concepts >Endorsement Key >Secure Input and Output >Memory Curtain / Protected.
FIT3105 Smart card based authentication and identity management Lecture 4.

FIT3105 Smart card based authentication and identity management Lecture 4.
Polytechnic University of Tirana Faculty of Information Technology Computer Engineering Department Identification of on-line users and Digital Signature.

Polytechnic University of Tirana Faculty of Information Technology Computer Engineering Department Identification of on-line users and Digital Signature.
Copyright © 1995-2003 Clifford Neuman - UNIVERSITY OF SOUTHERN CALIFORNIA - INFORMATION SCIENCES INSTITUTE CSci530: Computer Security Systems Authentication.

Copyright © Clifford Neuman - UNIVERSITY OF SOUTHERN CALIFORNIA - INFORMATION SCIENCES INSTITUTE CSci530: Computer Security Systems Authentication.
Hardware and Multimedia Chapter 4. 4 Personal Computers (PCs) PCs are computers that can be: Used by individuals at home, work, or school Desktop models.

Hardware and Multimedia Chapter 4. 4 Personal Computers (PCs) PCs are computers that can be: Used by individuals at home, work, or school Desktop models.

Similar presentations

Ads by Google